Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/85f894-1e55-4ad2-9615-b5e56e0eccde/1/hd-Tq01vtZiDxdHPRnORrt_UbMI.roa
File: hd-Tq01vtZiDxdHPRnORrt_UbMI.roa (raw, json)
Hash identifier: 88e4dCrNQgxhjSfeAmKd35uZKWHkd6G/rRRExqAL29I=
Subject key identifier: 85:DF:93:AB:4D:6F:B5:98:83:C5:D1:CF:46:73:91:AE:DF:D4:6C:C2
Certificate issuer: /CN=75b18ef2c4b4f8249f9a6eda0b33f0e57da8a9dc
Certificate serial: 01925217DE8055517854E1A8560741347D07
Authority key identifier: 75:B1:8E:F2:C4:B4:F8:24:9F:9A:6E:DA:0B:33:F0:E5:7D:A8:A9:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbGO8sS0-CSfmm7aCzPw5X2oqdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/85f894-1e55-4ad2-9615-b5e56e0eccde/1/hd-Tq01vtZiDxdHPRnORrt_UbMI.roa
Signing time: Thu 03 Oct 2024 11:15:48 +0000
ROA not before: Thu 03 Oct 2024 11:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15675
IP address blocks: 193.5.240.0/21 maxlen: 24
193.5.248.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:52:17:de:80:55:51:78:54:e1:a8:56:07:41:34:7d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75b18ef2c4b4f8249f9a6eda0b33f0e57da8a9dc
Validity
Not Before: Oct 3 11:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=85df93ab4d6fb59883c5d1cf467391aedfd46cc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:01:95:49:62:34:d8:d3:4c:ea:36:cb:38:ad:
07:4f:15:cf:30:95:ca:7f:e5:c7:f7:14:5d:a1:fb:
e3:60:90:df:c2:a8:f1:e4:34:0e:5d:bb:66:02:d6:
15:59:6b:7c:fe:3e:7c:17:a5:df:11:6a:3b:ad:ba:
02:a4:32:9f:da:46:24:87:70:48:52:1d:5f:2c:6d:
f8:90:ea:d7:a4:a0:8c:7c:a2:81:94:03:09:b4:b7:
44:10:5e:2a:2a:f7:a6:86:a1:3a:ec:3f:2a:29:f8:
d2:fe:fb:db:45:ee:cf:95:fa:80:5e:ee:ac:46:5e:
92:2e:86:85:9f:84:7b:21:f8:59:61:7c:97:95:4a:
bb:c5:05:c1:7b:b0:1e:35:de:b7:76:7e:d2:ca:8c:
3d:ef:65:5f:6c:58:0e:2f:8f:18:b1:b7:33:5d:aa:
ba:28:74:99:b1:19:20:0c:29:96:2f:a2:b7:47:02:
fa:1a:9d:62:39:0e:41:45:15:80:9a:db:27:bf:ee:
54:23:1e:82:6b:7a:71:6e:15:29:38:46:80:cc:f3:
b9:03:49:38:29:87:fe:43:18:94:26:e7:3b:75:13:
db:37:a3:c8:20:c2:35:1b:be:95:c2:95:cf:30:7b:
c4:22:45:95:a3:5c:91:55:93:db:e9:a6:12:41:f9:
54:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DF:93:AB:4D:6F:B5:98:83:C5:D1:CF:46:73:91:AE:DF:D4:6C:C2
X509v3 Authority Key Identifier:
keyid:75:B1:8E:F2:C4:B4:F8:24:9F:9A:6E:DA:0B:33:F0:E5:7D:A8:A9:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbGO8sS0-CSfmm7aCzPw5X2oqdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/85f894-1e55-4ad2-9615-b5e56e0eccde/1/hd-Tq01vtZiDxdHPRnORrt_UbMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/85f894-1e55-4ad2-9615-b5e56e0eccde/1/dbGO8sS0-CSfmm7aCzPw5X2oqdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.240.0-193.5.249.255
Signature Algorithm: sha256WithRSAEncryption
1a:a4:9e:13:92:d9:71:e9:d8:e2:4e:5f:c6:1e:72:6a:59:bb:
fc:9e:08:8b:38:16:96:7a:eb:d3:dc:55:5d:3f:77:5d:4a:98:
a7:60:2c:f9:c9:c3:24:95:bb:b6:04:9c:08:5b:d6:24:d2:04:
51:b6:16:04:6c:b1:98:f5:19:cb:56:d7:a1:39:75:72:b4:6c:
67:36:8d:c4:34:cb:ee:ac:33:85:cd:25:cf:5e:5b:61:ec:26:
29:02:9a:14:0b:3b:71:39:5b:5a:35:59:ce:36:23:a3:56:a0:
e7:b8:7d:7a:b8:94:88:b3:78:e7:7a:be:73:30:df:d1:e4:ac:
5f:28:71:d7:41:13:f4:18:c9:7c:f3:ef:2b:26:93:8b:e2:95:
93:d1:ce:bb:19:39:c8:5e:94:3e:0b:71:cf:b7:41:c7:3a:49:
ad:41:ec:a5:3d:f7:22:d2:eb:4f:08:a6:c3:e1:30:48:0f:15:
75:97:ff:53:ab:c8:43:6c:ee:58:73:dd:a5:b9:13:19:2f:97:
2f:af:28:b1:de:2c:cc:d0:9e:30:70:d8:69:c0:9f:f2:28:f6:
9f:82:85:40:c8:da:88:45:f5:26:55:94:b7:b4:01:52:9b:23:
fc:c6:c5:f2:96:79:a2:55:64:79:2f:f7:8c:58:66:c6:d3:00:
8e:f6:df:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:29 2025 by rpki-client